From c98539f354a60618e4ff6fe98d9c04faaa8785b2 Mon Sep 17 00:00:00 2001
From: Hannu Kamarainen <hannu.kamarainen@sprintit.fi>
Date: Fri, 6 Nov 2015 13:44:35 +0200
Subject: [PATCH] Fix keytype detection and reading private key when detecting
 it.

- Add sensible options for keytype when passing it as a parameter
- Only detect keytype/read private key if keytype was not passed in parameters.
- Pass password when reading private key (previously was missing)
---
 sudssigner/plugin.py | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/sudssigner/plugin.py b/sudssigner/plugin.py
index f259846..73fc316 100644
--- a/sudssigner/plugin.py
+++ b/sudssigner/plugin.py
@@ -74,18 +74,24 @@ def __init__(self, keyfile, keytype=None, pwd=None, pwdCallback=None,
     def load_keyfile(self):
         cert = file(self.keyfile, 'rb').read()
         self.cert = crypto.load_certificate(crypto.FILETYPE_PEM, cert)
-        self.privatekey = crypto.load_privatekey(crypto.FILETYPE_PEM, cert)
 
     def handle_keytype(self, keytype):
         if keytype is None:
             return self.detect_keytype()
+        elif keytype == "DSA":
+            return DSA
+        elif keytype == "RSA":
+            return RSA
         elif any(isinstance(keytype, t) for t in (str, unicode)):
             return keytype
         else:
             raise ValueError('keytype must be a string or None')
 
     def detect_keytype(self):
-        algo = self.privatekey.type()
+        cert = file(self.keyfile, 'rb').read()
+        pwd = (self.pwd or self.pwdCallback)
+        privatekey = crypto.load_privatekey(crypto.FILETYPE_PEM, cert, pwd)
+        algo = privatekey.type()
         if algo == crypto.TYPE_DSA:
             return DSA
         if algo == crypto.TYPE_RSA: